CRN Security News

A security researcher who advocates for a more thorough assessment of Amazon's cloud applications for configuration failures and inadequate security controls, says developers often leave gaping holes that can be used to gain access to sensitive information.

Hundreds of popular applications in the Apple App Store seek location-tracking permissions, access to contacts, email and other sensitive information, according to a study of more than 500 apps. Is granting permission to an app worth the privacy invasion?

Target said expenses associated with the response to its massive credit card breach last November are expected to reach $148 million, as it tallies the cost of its extensive digital forensics investigation, legal fees, customer outreach and additional security safeguards to reduce the risk of a future breach.

Verdasys is renaming itself to its flagship data loss prevention platform, Digital Guardian, a name that businesses recognize, said CEO Kenneth Levine. The company plans to add threat-detection capabilities, he said.

IBM's acquisition of Italian identity analytics and access governance vendor CrossIdeas gives the company a cloud-based audit and access intelligence platform to control and enforce access rights and role management processes for compliance and fraud detection.

An attack campaign connected to a network of malicious pornographic websites has hit more than 2,000 Google Android users in the U.S., and Kaspersky warns that campaigns are increasingly adding mobile components.

Highland Capital's $400 million technology fund was first to the table on Series A funding for antivirus maker Malwarebytes, which had been profitable and bootstrapping on its own for the past six years.

Six men were indicted for their role in an international cybercrime ring that defrauded online-ticket reseller StubHub of at least $1 million. Investigators believe the group used stolen passwords to gain access to accounts and purchase fraudulent e-tickets to concerts, sporting events and Broadway shows.